Advertisements

We’ve always argued that the most secure password is one you don’t even know , and is basically incomprehensible. Security expert Thomas Baekdal argues that these incomprehensible passwords—while secure—are not as secure as a more memorable and simple phrase. In other words, this is fun is a more secure password than s$yK0d*p!r3l09ls .

Here’s why. Baekdal outlines that using the three most common methods of cracking passwords—brute-force, common word, and dictionary attacks—are really only useful if a password can be cracked in a reasonable amount of time. If a password can be cracked in a few minutes, it’s not a terribly secure password. If it can be cracked in about a month, that’s still awhile but not entirely secure. A year is where you can start feeling secure, but the best passwords take a lifetime to crack. Baekdal states that a gibberish password, like J4fS